Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 993

993 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-14004 Nagios XI < 2024R1.2 Privilege Escalation via NagVis Configuration (nagvis.conf) — XI 7.8AIHighAI2025-10-30
CVE-2025-12425 Local Privilege Escalation — BLU-IC2 7.8AIHighAI2025-10-28
CVE-2025-12424 Privilege Escalation through SUID-bit Binary — BLU-IC2 7.8AIHighAI2025-10-28
CVE-2025-1037 Hitachi TropOS 4th Gen 安全漏洞 — TropOS 4th Gen 8.8AIHighAI2025-10-28
CVE-2025-11086 Academy LMS Pro <= 3.3.7 - Unauthenticated Privilege Escalation via Social Login Addon — Academy LMS Pro 8.1 High2025-10-22
CVE-2025-5496 Arbitrary File Deletion — Endpoint Central 3.3 Low2025-10-21
CVE-2025-6042 Lisfinity Core - Lisfinity Core plugin used for pebas® Lisfinity WordPress theme <= 1.4.0 - Unauthenticated Privilege Escalation to Editor — Lisfinity Core - Lisfinity Core plugin used for pebas® Lisfinity WordPress theme 7.3 High2025-10-15
CVE-2025-9067 Rockwell Automation FactoryTalk® Linx Privilege Escalation Vulnerabilities — FactoryTalk Linx 7.8AIHighAI2025-10-14
CVE-2025-9068 Rockwell Automation FactoryTalk® Linx Privilege Escalation Vulnerabilities — FactoryTalk Linx 7.8AIHighAI2025-10-14
CVE-2025-11533 WP Freeio <= 1.2.21 - Unauthenticated Privilege Escalation — WP Freeio 9.8 Critical2025-10-11
CVE-2025-59247 Azure PlayFab Elevation of Privilege Vulnerability — Azure PlayFab 8.8 High2025-10-09
CVE-2025-11561 Sssd: sssd default kerberos configuration allows privilege escalation on ad-joined linux systems 8.8 High2025-10-09
CVE-2025-61786 Deno's --deny-read check does not prevent permission bypass — deno 3.3 Low2025-10-08
CVE-2025-34251 Tesla Telematics Control Unit (TCU) < v2025.14 Authentication Bypass — Telematics Control Unit (TCU) 6.8AIMediumAI2025-10-06
CVE-2025-10578 HP Support Assistant - Potential Escalation of Privilege — HP Support Assistant 7.8AIHighAI2025-10-01
CVE-2025-7779 Acronis True Image 安全漏洞 — Acronis True Image 7.8AIHighAI2025-09-30
CVE-2025-10657 Docker Desktop with ECI Fails to Enforce Socket Command Restrictions — Docker Desktop 7.2 -2025-09-26
CVE-2025-5494 Privilege Escalation — Endpoint Central 3.9 Low2025-09-25
CVE-2025-9966 Execution with Unnecessary Privileges — P series (P07, P10, P12, P15) 9.8AICriticalAI2025-09-23
CVE-2025-9038 S1 Agile Privilege Escalation — S1 Agile Configuration Software 7.8AIHighAI2025-09-22
CVE-2025-34204 Vasion Print (formerly PrinterLogic) Processes Running as Root Inside Docker Instances — Print Virtual Appliance Host 10.0 -2025-09-19
CVE-2025-10650 Improper SSH Key Handling in Internal Debug Builds May Grant Cluster-Level Access to Non-Administrative Users — HyperCloud 9.8AICriticalAI2025-09-18
CVE-2025-34187 Ilevia EVE X1/X5 Server 4.7.18.0.eden Reverse Rootshell — EVE X1/X5 Server 7.2AIHighAI2025-09-16
CVE-2025-53914 Calix GigaCenter ONT (Broadcom SoC) - Excessive Privileges — GigaCenter ONT 9.8AICriticalAI2025-09-09
CVE-2025-53913 Calix GigaCenter ONT (Quantenna SoC) - Excessive Privileges — GigaCenter ONT 8.8AIHighAI2025-09-09
CVE-2025-40594 Siemens多款产品 安全漏洞 — SINAMICS G220 V6.4 6.3 Medium2025-09-09
CVE-2025-43722 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFS 6.7 Medium2025-09-08
CVE-2025-57759 Contao has improper privilege management for page and article fields — contao 4.3 Medium2025-08-28
CVE-2025-53105 GLPI permits unauthorized rules execution order — glpi 7.5 High2025-08-27
CVE-2025-36729 RACOM M!DGE2 Privilege Escalation via SDK Testing Endpoint — M!DGE2 7.2 High2025-08-26

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 993 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.